Security Affairs

APRIL 5, 2023

JCDC will map systemic risk and response by accounting for the following: Understanding inherent risks posed by open-source software used for industrial controls Reduce supply chain risk in critical infrastructure by employing remote monitoring, managed service, and managed security providers.

Energy and Utilities 98

Energy and Utilities Cyber threats Risk Cyber Risk 98

Security Affairs

SEPTEMBER 24, 2019

Security experts at Proofpoint observed a new wave of phishing attacks aimed at US Utilities in an attempt to deliver the LookBack RAT. Security experts at Proofpoint have discovered a new series of phishing attacks targeting entities US utilities in an attempt to deliver the LookBack RAT. nceess [. ] Nceess [. ]

Phishing 100

Phishing Energy and Utilities Advertising Engineering 100

Security Affairs

MAY 17, 2023

Searchlight Cyber researchers warn of threat actors that are offering on the dark web access to energy sector organizations. Dark web intelligence firm Searchlight Cyber published a report that analyzes how threat actors in the dark web prepare their malicious operations against energy organizations.

Energy and Utilities 98

Energy and Utilities Cybercrime Data collection Hacking 98

Security Affairs

MAY 15, 2025

is a vertically integrated electric utility serving the province of Nova Scotia, Canada. Its operations encompass generation, transmission, and distribution of electricity, utilizing a diverse mix of energy sources including coal, natural gas, hydroelectric, wind, tidal, oil, and biomass. or Caribbean utilities.

Data breaches 72

Data breaches Energy and Utilities Accountability Insurance 72

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. “Beginning in May 2023, Cofense has observed a large phishing campaign utilizing QR codes targeting the Microsoft credentials of users from a wide array of industries.” ” continues the report.

Phishing 98

Phishing Energy and Utilities Insurance Manufacturing 98

Krebs on Security

DECEMBER 12, 2018

Is it fair to judge an organization’s information security posture simply by looking at its Internet-facing assets for weaknesses commonly sought after and exploited by attackers, such as outdated software or accidentally exposed data and devices? The October analysis by the Chamber and FICO gives U.S. ARE YOU EXPERIANSED?

Cyber Risk 250

Cyber Risk Energy and Utilities Risk Marketing 250

Joseph Steinberg

MAY 12, 2021

And, just before the COVID-19 pandemic hit the United States, the Department of Homeland Security alerted information security professionals that a ransomware attack delivered via phishing emails had adversely impacted operations at one of the country’s natural gas processors. Nor were those isolated incidents.

Energy and Utilities 219

Energy and Utilities Ransomware Artificial Intelligence Cyber Attacks 219

Security Affairs

SEPTEMBER 26, 2024

It is widely used for automating machines and processes in industries like manufacturing, energy, and utilities. OpenPLC is an open-source programmable logic controller (PLC) designed to offer a low-cost solution for industrial automation.

Energy and Utilities 141

Energy and Utilities Manufacturing Hacking Information Security 141

Security Affairs

MARCH 25, 2022

has indicted four Russian government employees for their role in cyberattacks targeting hundreds of companies and organizations in the energy sector worldwide between 2012 and 2018. According to the indictment, the campaigns against the energy sector campaign involved two phases. and international Energy Sector organizations. .

Government 117

Government Energy and Utilities Malware Hacking 117

Security Affairs

FEBRUARY 19, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities 136

Energy and Utilities Ransomware Financial Services Manufacturing 136

Security Affairs

DECEMBER 26, 2023

2️ Cyber Attacks Against Energy (Oil & Gas) and Nuclear Sectors Critical infrastructure across all domains continues to remain a focal point for cyber-attacks, orchestrated by both cybercriminal elements and nation-state actors.

Cyber threats 139

Cyber threats Energy and Utilities Artificial Intelligence Cyber Attacks 139

Security Affairs

MARCH 5, 2025

Silk Typhoon targets multiple sectors worldwide, including information technology (IT) services and infrastructure, remote monitoring and management (RMM) companies, managed service providers (MSPs) and affiliates, healthcare, legal services, higher education, defense, government, non-governmental organizations (NGOs), and energy.

Energy and Utilities 63

Energy and Utilities Passwords VPN Healthcare 63

Security Affairs

APRIL 11, 2021

The “accident” impacted the electricity distribution network at Iran’s Natanz nuclear facility, Atomic Energy Organization of Iran spokesman Behrouz Kamalvandi told the Iranian Fars News Agency. . ” reads the post published by Jerusalem Post. ” continues the JP.

Cyber Attacks 135

Cyber Attacks Energy and Utilities Media Hacking 135

Security Affairs

JULY 25, 2019

South African electric utility City Power that provides energy to the city of Johannesburg, has suffered serious disruptions after a ransomware attack. The energy utility informed its customers via Twitter of the ransomware attack that encrypted its network, including all its databases and applications.

Energy and Utilities 105

Energy and Utilities Ransomware Advertising Encryption 105

Security Affairs

DECEMBER 17, 2021

Recently the Conti gang hit the attack on the Australian energy CS Energy and threaten to leak the stolen files. “The current exploitation led to multiple use cases through which the Conti group tested the possibilities of utilizing the Log4J2 exploit. ” continues AdvIntel.

Ransomware 139

Ransomware Energy and Utilities Cybercrime Malware 139

Security Affairs

AUGUST 31, 2022

The Italian energy sector appears to be under attack, over the weekend, Italy’s energy agency Gestore dei Servizi Energetici SpA was hit by a cyber attack. Ransomware is a type of malware that locks computers and blocks access to files in lieu of a payment. It’s not clear who was responsible for the breach.

Energy and Utilities 108

Energy and Utilities Ransomware Cyber Attacks Hacking 108

Security Affairs

JANUARY 27, 2022

In March 2021, Puerto Rico Electric Power Authority (PREPA) power utility confirmed early this week that it has been hacked over the weekend. In June 2021, a large fire at the Luma’s Monacillo electrical substation in San Juan for Puerto Rico’s new electricity provider, Luma Energy, caused major blackouts across Puerto Rico on Thursday.

Energy and Utilities 112

Energy and Utilities DDOS Internet Internet 112

Security Affairs

FEBRUARY 8, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities 136

Energy and Utilities VPN Manufacturing Firewall 136

Security Affairs

DECEMBER 16, 2021

of all systems targeted by the PseudoManuscrypt malware are part of industrial control systems (ICS) used by organizations in multiple industries, including Engineering, Building Automation, Energy, Manufacturing, Construction, Utilities, and Water Management. The experts revealed that at least 7.2%

Spyware 139

Spyware Energy and Utilities Malware Engineering 139

Security Affairs

JULY 5, 2023

RedEnergy is a sophisticated stealer-as-a-ransomware that was employed in attacks targeting energy utilities, oil, gas, telecom, and machinery sectors. Zscaler ThreatLabz researchers discovered a new Stealer-as-a-Ransomware named RedEnergy used in attacks against energy utilities, oil, gas, telecom, and machinery sectors.

Energy and Utilities 98

Energy and Utilities Ransomware Backups Malware 98

SC Magazine

MAY 1, 2021

Prior to Mastercard, Abdullah was the chief information security officer at Xerox, where she established and led a corporate-wide information risk management program. She also served as the deputy chief information officer of the White House. Chris Lambrou is chief information officer at Metro MLS in Milwaukee.

Computers and Electronics 126

Computers and Electronics Technology Information Security Education 126

Security Affairs

FEBRUARY 28, 2024

. “As early as 2022, APT28 actors had utilized compromised EdgeRouters to facilitate covert cyber operations against governments, militaries, and organizations around the world.” APT28 had utilized compromised Ubiquiti EdgeRouters as a command-and-control infrastructure for MASEPIE backdoors. ” reads the joint report.

Energy and Utilities 134

Energy and Utilities Government Firewall Malware 134

Security Affairs

APRIL 19, 2024

In the most recent campaign, the group targeted organizations in the communications, manufacturing, utility, transportation, construction, maritime, government, information technology, and education sectors. The Volt Typhoon group has been active since at least mid-2021 it carried out cyber operations against critical infrastructure.

Energy and Utilities 133

Energy and Utilities Telecommunications Technology Government 133

Security Affairs

OCTOBER 9, 2022

Eskom transforms inputs from the natural environment – coal, nuclear, fuel, diesel, water, and wind – into more than 90% of the energy supplied to a wide range of customers in South Africa and the Southern African Development Community (SADC) region. Government of the Republic of South Africa owned utility ESKOM Hld SOC Ltd.

Energy and Utilities 102

Energy and Utilities Ransomware InfoSec Hacking 102

Security Affairs

JUNE 6, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities 138

Energy and Utilities Ransomware Encryption Financial Services 138

Security Affairs

FEBRUARY 21, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation.

Energy and Utilities 134

Energy and Utilities Ransomware Manufacturing Financial Services 134

Security Affairs

MAY 9, 2020

The attacks targeted a major utility provider, a university, and a government agency in the United States, a health agency in Canada, a health insurance provider, an energy company in Australia, and a European medical publishing company to deliver various malware families. ” Palo Alto Networks concludes. “In

Healthcare 103

Healthcare Government Energy and Utilities Insurance 103

CyberSecurity Insiders

MAY 5, 2021

Keysight’s recent acquisitions and technology advancements in wireless security assessment enable us to offer exceptional solutions that test and measure many facets of a vehicle,” said Steve McGregory, senior director of Keysight’s ATI Research Center. Keysight generated revenues of $4.2B in fiscal year 2020.

Information Security 40

Information Security Computers and Electronics Energy and Utilities Cybersecurity 40

Security Affairs

NOVEMBER 29, 2020

” During the last campaign, the hackers targeted multiple sectors including Government, financial, energy, food industry, healthcare, education, IT, and legal institutions. Samples from the Dark Caracal campaign (2017) utilized around 100 commands, compared to the current 120 command version we analyzed.

Energy and Utilities 138

Energy and Utilities Malware Government Healthcare 138

SC Magazine

MAY 10, 2021

This provides attackers opportunities to sneak through cyber defenses as we saw in the water utility attack in Oldsmar, Florida earlier this year.”. Other critical infrastructure operators that face similar distributed network challenges include the electric grid and water and wastewater treatment utilities, said experts.

Risk 105

Risk Energy and Utilities Backups Ransomware 105

Security Affairs

APRIL 19, 2023

Mint Sandstorm also used custom tools in selected targets, notably organizations in the energy and transportation sectors. The group rapidly weaponized N-day vulnerabilities in popular enterprise applications by using publicly disclosed POCs.

Energy and Utilities 98

Energy and Utilities Accountability Education Media 98

The Last Watchdog

NOVEMBER 16, 2020

Simply put, iO must be achieved in order to preserve privacy and security while tapping into the next generation of IT infrastructure. It will, of course, be vital to have these next-gen, AI-infused systems run securely, in ways that preserve individual privacy. For instance, basic research led by Dr. Robert L.

Software 182

Software Computers and Electronics Encryption Energy and Utilities 182

Security Affairs

FEBRUARY 20, 2024

Since January 2020, affiliates utilizing LockBit have targeted organizations of diverse sizes spanning critical infrastructure sectors such as financial services, food and agriculture, education, energy, government and emergency services, healthcare, manufacturing, and transportation. on January 5, 2020.

Energy and Utilities 134

Energy and Utilities Ransomware Manufacturing Financial Services 134

Security Affairs

APRIL 2, 2023

Energy utilities and oil and gas, but also water utilities and transportation systems, are privileged targets of nation-state actors. ” concludes the report.

Energy and Utilities 98

Energy and Utilities Media Hacking Technology 98

Security Affairs

MAY 25, 2020

One of the victims of the ransomware is the energy giant Energias de Portugal (EDP) , where the attackers claimed to have stolen 10 TB of files. “A new ransomware attack method takes defense evasion to a new level—deploying as a full virtual machine on each targeted device to hide the ransomware from view.

Encryption 137

Encryption Ransomware Energy and Utilities Advertising 137

Security Affairs

NOVEMBER 9, 2019

Another vulnerability is related to the use of a vulnerable version of the rssh utility in these products to facilitate file uploads. and below, Valleylab FT10 Energy Platform (VLFT10GEN) software version 4.0.0 and below, and Valleylab FX8 Energy Platform (VLFX8GEN) software version 1.1.0 and lower and version 2.0.3

Energy and Utilities 72

Energy and Utilities Advertising Software Hacking 72

IT Security Guru

JUNE 16, 2021

In addition to hacking efforts, businesses reported increased pressure from phishing (44%), fake contact tracing apps and calls (43%) and ransomware (43%), with the greatest increase in incidents in the energy, oil, gas and utilities sector (80%).

CISO 104

CISO Energy and Utilities Phishing Ransomware 104